What is the severity of CVE-2024-45580?

CVE-2024-45580 is classified as a high severity vulnerability due to its potential for memory corruption from multiple IOCTL calls.

How do I fix CVE-2024-45580?

To mitigate CVE-2024-45580, users should apply the latest firmware updates provided by Qualcomm for affected devices.

Which devices are affected by CVE-2024-45580?

CVE-2024-45580 affects various Qualcomm firmware including FastConnect 6900, FastConnect 7800, and several Snapdragon models.

What are the potential impacts of CVE-2024-45580?

Exploitation of CVE-2024-45580 could lead to unauthorized access and manipulation of system memory, potentially compromising device integrity.

How does CVE-2024-45580 impact system security?

CVE-2024-45580 poses a significant risk as it may allow attackers to execute arbitrary code or crash the system through improperly handled IOCTL calls.

Vulnerability/
CVE-2024-45580

high

7.8

CWE

416

3/3/2025

6/3/2025

CVE-2024-45580: Use After Free in DSP Service

First published: Mon Mar 03 2025(Updated: )

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
All of
Qualcomm FastConnect 6900 Firmware
Qualcomm Fastconnect 6900 Firmware
All of
Qualcomm FastConnect 7800 Firmware
Qualcomm Fastconnect 7800 Firmware
All of
Qualcomm Qmp1000
Qualcomm Qmp1000 Firmware
All of
Qualcomm SDM429W
qualcomm SDM429W firmware
All of
Qualcomm SM8735
Qualcomm SM8735
All of
Qualcomm SM8750P Firmware
Qualcomm SM8750 Firmware
All of
Qualcomm SM8750 Firmware
Qualcomm SM8750P Firmware
All of
Qualcomm SDA429W Firmware
Qualcomm Snapdragon 429 Mobile
All of
Qualcomm Snapdragon 8 Gen 3 Mobile Firmware
Qualcomm Snapdragon 8 Gen 3 Mobile Platform
All of
Qualcomm Snapdragon AR1 Gen 1 Firmware
Qualcomm Snapdragon AR1 Gen 1 Firmware
All of
Qualcomm Snapdragon AR2 Gen 1 Platform Firmware
Qualcomm Snapdragon Ar2 Gen 1 Firmware
All of
Qualcomm SSG2115P Firmware
Qualcomm SSG2115P Firmware
All of
Qualcomm SSG2125P
Qualcomm SSG2125P
All of
Qualcomm SXR1230P
Qualcomm SXR1230P Firmware
All of
Qualcomm SXR2230P
Qualcomm SXR2230P
All of
Qualcomm SXR2250P
Qualcomm SXR2250P
All of
Qualcomm SXR2330P Firmware
Qualcomm SXR2330P Firmware
All of
Qualcomm WCD9378
Qualcomm WCD9378
All of
Qualcomm WCD9380
Qualcomm WCD9380 Firmware
All of
Qualcomm WCD9385
Qualcomm WCD9385 Firmware
All of
Qualcomm WCD9390 Firmware
Qualcomm WCD9390 Firmware
All of
Qualcomm WCD9395 Firmware
Qualcomm WCD9395 Firmware
All of
Qualcomm WCN3620 Firmware
Qualcomm WCN3620 Firmware
All of
Qualcomm WCN3660B
Qualcomm WCN3660B Firmware
All of
Qualcomm WCN3680B Firmware
Qualcomm WCN3680B Firmware
All of
Qualcomm Wcn3980
Qualcomm WCN3980
All of
Qualcomm Wcn7750 Firmware
Qualcomm Wcn7750 Firmware
All of
Qualcomm WCN7860 Firmware
Qualcomm WCN7860 Firmware
All of
Qualcomm WCN7861 Firmware
Qualcomm WCN7861 Firmware
All of
Qualcomm WCN7880 firmware
Qualcomm WCN7880 firmware
All of
qualcomm wcn7881 firmware
qualcomm wcn7881 firmware
All of
Qualcomm WSA8830
Qualcomm WSA8830
All of
Qualcomm WSA8832 Firmware
Qualcomm WSA8832 Firmware
All of
Qualcomm WSA8835
Qualcomm WSA8835 Firmware
All of
Qualcomm WSA8840 Firmware
Qualcomm WSA8840 Firmware
All of
Qualcomm WSA8845H
Qualcomm WSA8845 Firmware
All of
Qualcomm WSA8845 Firmware
Qualcomm WSA8845H Firmware

Remedy

https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html

Never miss a vulnerability like this again

Reference Links

https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-bulletin.html

Frequently Asked Questions

What is the severity of CVE-2024-45580?
CVE-2024-45580 is classified as a high severity vulnerability due to its potential for memory corruption from multiple IOCTL calls.
How do I fix CVE-2024-45580?
To mitigate CVE-2024-45580, users should apply the latest firmware updates provided by Qualcomm for affected devices.
Which devices are affected by CVE-2024-45580?
CVE-2024-45580 affects various Qualcomm firmware including FastConnect 6900, FastConnect 7800, and several Snapdragon models.
What are the potential impacts of CVE-2024-45580?
Exploitation of CVE-2024-45580 could lead to unauthorized access and manipulation of system memory, potentially compromising device integrity.
How does CVE-2024-45580 impact system security?
CVE-2024-45580 poses a significant risk as it may allow attackers to execute arbitrary code or crash the system through improperly handled IOCTL calls.

agent/title
agent/references
agent/weakness
agent/type
agent/description
agent/first-publish-date
agent/severity
agent/author
agent/source
agent/remedy
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/qualcomm
canonical/qualcomm fastconnect 6900 firmware
canonical/qualcomm fastconnect 7800 firmware
canonical/qualcomm qmp1000
canonical/qualcomm qmp1000 firmware
canonical/qualcomm sdm429w
canonical/qualcomm sdm429w firmware
canonical/qualcomm sm8735
canonical/qualcomm sm8750p firmware
canonical/qualcomm sm8750 firmware
canonical/qualcomm sda429w firmware
canonical/qualcomm snapdragon 429 mobile
canonical/qualcomm snapdragon 8 gen 3 mobile firmware
canonical/qualcomm snapdragon 8 gen 3 mobile platform
canonical/qualcomm snapdragon ar1 gen 1 firmware
canonical/qualcomm snapdragon ar2 gen 1 platform firmware
canonical/qualcomm snapdragon ar2 gen 1 firmware
canonical/qualcomm ssg2115p firmware
canonical/qualcomm ssg2125p
canonical/qualcomm sxr1230p
canonical/qualcomm sxr1230p firmware
canonical/qualcomm sxr2230p
canonical/qualcomm sxr2250p
canonical/qualcomm sxr2330p firmware
canonical/qualcomm wcd9378
canonical/qualcomm wcd9380
canonical/qualcomm wcd9380 firmware
canonical/qualcomm wcd9385
canonical/qualcomm wcd9385 firmware
canonical/qualcomm wcd9390 firmware
canonical/qualcomm wcd9395 firmware
canonical/qualcomm wcn3620 firmware
canonical/qualcomm wcn3660b
canonical/qualcomm wcn3660b firmware
canonical/qualcomm wcn3680b firmware
canonical/qualcomm wcn3980
canonical/qualcomm wcn7750 firmware
canonical/qualcomm wcn7860 firmware
canonical/qualcomm wcn7861 firmware
canonical/qualcomm wcn7880 firmware
canonical/qualcomm wcn7881 firmware
canonical/qualcomm wsa8830
canonical/qualcomm wsa8832 firmware
canonical/qualcomm wsa8835
canonical/qualcomm wsa8835 firmware
canonical/qualcomm wsa8840 firmware
canonical/qualcomm wsa8845h
canonical/qualcomm wsa8845 firmware
canonical/qualcomm wsa8845h firmware